Nicola Hermansson, CIPP/E, CIPT


Ernst & Young

Nicola Hermansson is the EY New Zealand Data Privacy Leader, and has recently moved to New Zealand having previously led the EY Data Privacy practice in UK & Ireland. She has over 14 years’ experience delivering data privacy and information security services to clients across the private and public sector. Nicola has lead numerous data privacy assessments and improvement programmes for global organisations, including the design and delivery of data protection governance frameworks, development of local and global data protection policies, creation of personal data inventories, development of third party due diligence processes and tools, and training and awareness design and delivery. Nicola is focused on helping organisations to understand their privacy risks, and design and deliver privacy programmes that are commercial, pragmatic, business focused and add value to their business.


Nicola is a Certified Information Privacy Professional, holding the CIPP/Europe and CIPT (Certified Information Privacy Technologist) qualifications and an ISEB in Data Protection.  She is a Certified Information System Security Professional (CISSP), a Certified Information Systems Auditor (CISA) and has been a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA) and has an MSc in Information Security.



Contributions by Nicola Hermansson